An Android banking Trojan discovered two years ago has become a global threat in the past months, after being updated with new ransomware capabilities, Doctor Web security researchers warn.
read more
EFF’s Let’s Encrypt Client Certbot Debuts in Beta
The Electronic Frontier Foundation (EFF) on Thursday announced Certbot, a Let's Encrypt client designed to help websites encrypt their traffic.
read more
Webcast: Industrial Cyber Security: How Much Is Enough?
A cyber incident in an industrial control system can have serious consequences, and all security technologies have limitations. This means we can always be more secure, or less.
We could force-fit cyber risks into more conventional models by "making up" numbers for the probability of serious incidents, but "made up" numbers yield poor business decisions.
read more
To Demonstrate ROI for Cyber Situational Awareness, Consider the Incident
Security is now a topic on many board meeting agendas. Board members need to understand what threats they face, if they are prepared to stop them, and what additional security investments they need to make to better protect themselves from compromised brand integrity, instances of sensitive data loss, or potential threats.
read more
Tumblr Resets User Passwords Following Breach
Tumblr reported on Thursday that a third party had gained access to the email addresses and passwords of some users.
According to the company, the data is from early 2013, before Tumblr was acquired by Yahoo. Furthermore, the exposed passwords were not stored in clear text — Tumblr said they were salted and hashed.
read more
German Spy Service Says Russia Behind Major Cyber Attacks
'Evidence' Russia Behind Cyber Attacks in Germany: Secret Service
read more
Second SWIFT Attack Hits Vietnam Bank Showing Links to Sony Hack
At a financial conference in Frankfurt, Thursday, SWIFT's chief executive Gottfried Leibbrandt told the audience that the $81 million theft from the Bangladesh central bank's New York account "was from our perspective a customer fraud." He added, "I don’t think it was the first, I don’t think it will be the last."
read more
Serious Flaws Found in 7-Zip File Archiver
An update released this week for the open source file archiver 7-Zip patches a couple of serious vulnerabilities discovered by researchers of Cisco’s Talos group.
read more
Podcast: Jeremiah Grossman on the Attacker-Defender Mentality
Infosec veteran and former CEO of WhiteHat Security Jeremiah Grossman joins Ryan Naraine on the podcast to talk about the parallels between jiu-jitsu and computer security and the ongoing cat-and-mouse game between attackers and defenders.
read more
Pawn Storm Cyberspies Target German Ruling Party
The Russia-linked cyber espionage group Pawn Storm has been observed targeting the Christian Democratic Union of Germany, the political party of Chancellor Angela Merkel.
read more
